From owner-freebsd-www Fri Nov 8 1:32:32 2002 Delivered-To: freebsd-www@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 738D437B401; Fri, 8 Nov 2002 01:32:31 -0800 (PST) Received: from rhadamanth.submonkey.net (pc1-cdif2-4-cust210.cdf.cable.ntl.com [80.4.10.210]) by mx1.FreeBSD.org (Postfix) with ESMTP id 30F5043E42; Fri, 8 Nov 2002 01:32:30 -0800 (PST) (envelope-from setantae@submonkey.net) Received: from setantae by rhadamanth.submonkey.net with local (Exim 4.10) id 18A5V5-000F0H-00; Fri, 08 Nov 2002 09:32:27 +0000 Date: Fri, 8 Nov 2002 09:32:27 +0000 From: Ceri Davies To: Kris Kennaway Cc: Jun Kuriyama , developers@FreeBSD.org, www@FreeBSD.org Subject: Re: send-pr again Message-ID: <20021108093227.GB57534@submonkey.net> Mail-Followup-To: Ceri Davies , Kris Kennaway , Jun Kuriyama , developers@FreeBSD.org, www@FreeBSD.org References: <20021107202918.GA21969@rot13.obsecurity.org> <20021107204243.GA22068@rot13.obsecurity.org> <20021107225607.GA22962@rot13.obsecurity.org> <7my985htpt.wl@black.imgsrc.co.jp> <20021108024603.GA23540@rot13.obsecurity.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20021108024603.GA23540@rot13.obsecurity.org> X-message-flag: All your linuxconf-configured redhat are belong to us. X-message-flag-attribution: suresh, sdm. User-Agent: Mutt/1.5.1i Sender: owner-freebsd-www@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Thu, Nov 07, 2002 at 06:46:03PM -0800, Kris Kennaway wrote: > On Fri, Nov 08, 2002 at 07:59:26AM +0900, Jun Kuriyama wrote: > > At Thu, 7 Nov 2002 14:56:21 -0800, > > Kris Kennaway wrote: > > > > 2) Probe for an open proxy on the submitting host before accepting the > > > > PR (similar to what modern ircd servers do). > > > > > > If anyone is interested in implementing this, someone gave me the > > > source code to a standalone binary that does this (checks an IP > > > address for an open proxy). It should be an easy matter to integrate > > > this into dosendpr.cgi. > > > > Openproxy checking is already integrated into dosendpr.cgi. > > The current version appears to consult a third-party database of known > open proxies. It apparently doesn't work very well in practice, > because today's attacker was also using an open proxy. The current code is also supposed to log the environment in the PR headers, which it doesn't do for some reason. I'd be grateful if anyone could take a look at this. > The code I have checks for an open proxy on the fly, so it would have > stopped today's attack. I'd be prepared to take a look, although I am in Berlin as of tomorrow with zero connectivity for a week. If it can wait that long, could you send me the relevant bits please. Thanks, Ceri -- Your last day awaits! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-www" in the body of the message